[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ipsec error protocol

To: fd@cisco.com
Subject: Re: ipsec error protocol
From: Stephen Kent <kent@bbn.com>
Date: Mon, 29 Jan 2001 16:06:27 -0500
Cc: ipsec@lists.tislabs.com
In-Reply-To: <3A6FD6E4.93F510EE@cisco.com>
References: <LBELLCAPBPEPMOMELLJDAEEMCHAA.sankar@nexsi.com><3A6FD6E4.93F510EE@cisco.com>
Sender: owner-ipsec@lists.tislabs.com

Frédéric<bold>,


</bold>I'm very uncomfortable moving toward ACKs in ESP. We try in
IPsec to mimic IP functionality as much as possible, and IP does not
ACK packets. Note that our anti-replay strategy allows for out of order
arrival precisely because IP allows for it (even though we do impose
<underline>some</underline> limits here).


Steve

Follow-Ups:

Re: ipsec error protocol

From: Frédéric Detienne <fd@cisco.com>

RE: ipsec error protocol

From: "sankar ramamoorthi" <sankar@nexsi.com>

References:

RE: ipsec error protocol

From: "sankar ramamoorthi" <sankar@nexsi.com>

Re: ipsec error protocol

From: Frédéric Detienne <fd@cisco.com>

Prev by Date: Re: compliance question
Next by Date: RE: ipsec error protocol
Prev by thread: Re: ipsec error protocol
Next by thread: Re: ipsec error protocol
Index(es):
- Main
- Thread